Open-Source LLMs Expose Large-Scale Security Vulnerabilities

Researchers from SentinelOne and Censys, reporting to Reuters after a 293-day study, found thousands of internet-exposed open-source LLM deployments susceptible to takeover and misuse. They observed visible system prompts in roughly 25% of deployments, with 7.5% potentially enabling harmful activity, and noted about 30% of hosts reside in China and 20% in the U.S. The findings underscore gaps in guardrails and the need for shared mitigation responsibilities.